Alibaba Cloud Service Mesh (ASM) is a fully managed service mesh platform. ASM is compatible with open source Istio. ASM allows you to manage services in a simplified manner. For example, you can use ASM to route and split inter-service traffic, secure inter-service communication with authentication, and observe the behavior of services in meshes. This greatly reduces your workload in development and O&M.

Architecture

The following figure shows the architecture of ASM.

ASM architecture

ASM integrates and manages all components on the Istio control plane to simplify your use of ASM. This way, you can focus on application development and deployment. In addition, ASM is compatible with open source Istio. You can use declarative parameters to define flexible routing rules, and centrally manage traffic between services in a mesh.

An ASM instance with the managed control plane supports application services from multiple Kubernetes clusters or application services that are run in pods of Elastic Container Instance. You can also deploy non-Kubernetes services, such as services that run on VMs or bare metal hosts, into the same service mesh.

Features

ASM builds managed and unified service mesh capabilities in core scenarios, such as hybrid cloud, multi-cloud, multi-cluster, and non-containerized application migration. ASM provides the following benefits:

  • Centralized management mode

    ASM manages application services that run in managed, dedicated, and serverless clusters of Container Service for Kubernetes (ACK) and registered clusters in hybrid cloud and multi-cloud environments in a centralized manner. This provides unified observability and throttling for application services.

  • Centralized traffic management

    ASM centrally manages the traffic between application services that are deployed in a hybrid environment in which containers and virtual machines coexist.

  • Managed core components of the control plane

    ASM manages core components of the Istio control plane. This helps minimize your resource overhead and O&M costs.

Instance specifications

ASM provides the following editions of instances: Standard Edition, Enterprise Edition, and Ultimate Edition. Standard Edition is a free edition, and the other editions are commercial editions. Enterprise Edition and Ultimate Edition extend the features of Standard Edition to enhance multi-protocol support and dynamic extension capabilities, provide fine-grained service governance, and improve the zero-trust security system. In addition, the commercial editions enhance performance, provide better support for large-scale clusters, and simplify the use of ASM instances in production environments. Enterprise Edition and Ultimate Edition are applicable to scenarios in which you require cross-language interoperability and fine-grained service governance and want to apply the service mesh technology in production environments on a large scale.

For more information about the features of Standard Edition, Enterprise Edition, and Ultimate Edition, see Features.
Note ASM allows you to update your ASM instances. For more information, see Update the instance type of an ASM instance.

References